add ssh-ddos jail

tags/0.0.1
Daniel Berteaud 12 years ago
parent 14170ae297
commit a04440c3b2
  1. 12
      root/etc/e-smith/templates/etc/fail2ban/jail.conf/30Service10ssh

@ -15,4 +15,16 @@ EOF
$OUT .= " smeserver-sendmail[name=\"SSH\",dest=$maildest]\n" $OUT .= " smeserver-sendmail[name=\"SSH\",dest=$maildest]\n"
if ($mail eq 'enabled'); if ($mail eq 'enabled');
$OUT .=<<"EOF";
[ssh-ddos]
enabled = true
filter = sshd-ddos
logpath = /var/log/sshd/current
action = smeserver-iptables[port="$port",protocol=tcp,bantime=$bantime]
EOF
$OUT .= " smeserver-sendmail[name=\"SSH\",dest=$maildest]\n"
if ($mail eq 'enabled');
} }

Loading…
Cancel
Save